$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80422ae7-d538-408d-b2b3-68ee6ae98ff6.roa File: 80422ae7-d538-408d-b2b3-68ee6ae98ff6.roa (raw, json) Hash identifier: +dqPlSANsprx23K5i1L/gA+j3UFxO3b12KtrHbDOIaY= Subject key identifier: CA:F8:FC:0B:C8:F4:84:78:78:57:71:4C:46:0B:C0:4C:B6:02:29:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 462FEF4189B6CAF003B1C364D88B05D46714947F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80422ae7-d538-408d-b2b3-68ee6ae98ff6.roa Signing time: Sat 08 Feb 2025 00:00:00 +0000 ROA not before: Sat 08 Feb 2025 00:00:00 +0000 ROA not after: Sat 15 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.145.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:2f:ef:41:89:b6:ca:f0:03:b1:c3:64:d8:8b:05:d4:67:14:94:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:00 2025 GMT Not After : Mar 15 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7d:10:c3:25:31:60:03:f9:4e:85:c0:88:21: 09:23:84:1c:d6:35:b0:0f:c5:c6:c8:d7:57:eb:47: 68:56:5b:56:f2:2a:e0:df:1e:38:0c:d6:57:fc:f2: ef:41:b9:48:39:27:b6:60:94:d4:fc:4d:1b:cc:92: 05:ba:6d:fa:0b:ea:6a:9d:7c:c0:2e:9b:f0:e5:e8: 42:5e:df:46:98:b4:17:3c:75:1e:3f:78:d1:ef:e0: d9:1e:89:8f:1b:e5:89:75:68:12:cc:f9:2b:b7:45: 26:94:d9:3a:2f:95:ba:93:53:c1:08:98:6a:55:bd: b2:b9:90:81:f5:e4:0c:1a:ad:d2:05:7c:e5:ef:70: 50:3f:d8:fa:1e:f4:e3:a0:e9:1b:a1:01:5d:cb:ed: c2:7b:bb:d4:fe:95:e9:1b:60:01:6f:84:33:5d:b2: 0b:e5:7c:88:0b:56:68:b6:80:9c:3c:7a:0b:8e:1f: 24:fb:16:75:a3:57:1c:ae:f7:40:dc:0e:53:21:eb: 30:3e:2b:05:78:d3:00:f6:5a:f4:ac:be:e3:46:36: f0:93:d2:c7:a9:c0:02:43:0f:a8:de:f8:bc:4b:13: 22:f1:ae:ef:01:31:2c:a4:4e:38:a9:31:f9:e5:18: 48:51:a6:73:f4:b8:6e:63:03:66:7f:4d:19:3d:80: 71:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F8:FC:0B:C8:F4:84:78:78:57:71:4C:46:0B:C0:4C:B6:02:29:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80422ae7-d538-408d-b2b3-68ee6ae98ff6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.145.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:26:83:3d:e9:29:e7:9a:f3:44:a1:3c:f2:d3:2a:86:8b:ce: f7:6e:aa:3a:1a:1f:22:98:f3:ac:0b:f5:59:50:5c:28:02:c5: fd:2e:01:d2:b0:5b:15:ba:6a:82:24:8d:b9:f4:7b:db:97:95: 13:3d:d6:84:31:9e:0c:21:01:ec:d5:22:f6:60:18:b9:7b:5f: 35:ea:84:4a:bf:0b:8d:4b:03:52:19:2c:e5:97:9b:6b:7c:f9: 58:e2:d6:9d:e9:3a:7f:c7:31:c4:44:95:de:3f:18:b2:1e:f3: a4:4f:98:31:c9:00:fa:b6:21:58:0d:11:c8:92:e3:7a:e1:1f: b2:50:f6:da:a8:33:3f:70:1d:94:b0:78:15:b5:2a:dc:42:eb: 0c:17:ca:5e:2e:16:9f:9c:5b:36:40:72:ba:1a:ef:a5:0c:2c: c7:69:89:4a:00:f3:bb:a7:80:2c:cb:4e:c4:25:13:d7:fe:71: 24:7d:d1:1f:f3:81:44:47:e6:0d:cb:de:f3:45:14:9b:1f:be: 36:a1:63:18:ad:ca:5e:bc:a5:ce:a7:5b:4c:28:a0:12:01:36: 65:b1:ab:80:a3:1a:8d:16:ec:75:7a:d4:03:ca:a3:fa:55:96: a2:83:46:0f:3d:83:6f:28:8d:ba:e5:5e:74:d6:49:db:6c:d7: 69:10:79:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURi/vQYm2yvADscNk2IsF1GcUlH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA4MDAwMDAwWhcNMjUwMzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjg1MGMyZjM2MGUyMjRiNzI1ZTRjOWNmNzlmMzVmYjVj OGIwOWQyYTMyM2JhNzk3MjlkMzY3MTAwNWY3OTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0fRDDJTFgA/lOhcCIIQkjhBzWNbAPxcbI11frR2hWW1by KuDfHjgM1lf88u9BuUg5J7ZglNT8TRvMkgW6bfoL6mqdfMAum/Dl6EJe30aYtBc8 dR4/eNHv4NkeiY8b5Yl1aBLM+Su3RSaU2TovlbqTU8EImGpVvbK5kIH15AwardIF fOXvcFA/2Poe9OOg6RuhAV3L7cJ7u9T+lekbYAFvhDNdsgvlfIgLVmi2gJw8eguO HyT7FnWjVxyu90DcDlMh6zA+KwV40wD2WvSsvuNGNvCT0sepwAJDD6je+LxLEyLx ru8BMSykTjipMfnlGEhRpnP0uG5jA2Z/TRk9gHHfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyvj8C8j0hHh4V3FMRgvATLYCKZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwNDIyYWU3LWQ1MzgtNDA4ZC1iMmIzLTY4ZWU2YWU5OGZmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCkkTANBgkqhkiG9w0BAQsFAAOCAQEAKyaDPekp55rzRKE88tMqhovO926q OhofIpjzrAv1WVBcKALF/S4B0rBbFbpqgiSNufR725eVEz3WhDGeDCEB7NUi9mAY uXtfNeqESr8LjUsDUhks5Zeba3z5WOLWnek6f8cxxESV3j8Ysh7zpE+YMckA+rYh WA0RyJLjeuEfslD22qgzP3AdlLB4FbUq3ELrDBfKXi4Wn5xbNkByuhrvpQwsx2mJ SgDzu6eALMtOxCUT1/5xJH3RH/OBREfmDcve80UUmx++NqFjGK3KXrylzqdbTCig EgE2ZbGrgKMajRbsdXrUA8qj+lWWooNGDz2DbyiNuuVedNZJ22zXaRB58g== -----END CERTIFICATE-----Generated at Sun Feb 16 15:15:08 2025 by rpki-client